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IN THE CUIMS 

Ploaso ADD new claims 18-32 and subsequsntly CANCEL claims 1-17. 
This listing of dalms will replace all prior versions and listings of claims in the 

5 application. 

Claims 1-17 {Cancelled). 




^0 

^ (New) A method of securing a nomputer system of an end user, comprising: 

^ storing a software provider root security information ohjerf in an end user's 

10 computer system; and 
V ^ producing an ond user root security Information object based on the software 

^xr" provider root security information object; 
^ \ V receiving security information from e higher-level entity; 

^ validating the received seoirHy infonmation using the end user root security 

15 Information object, and 

updating the end user root security Infomiailon object based on validated senurity 

information; 

wherein the end user root security infonnation object determinas the entitles the 
end user can tmst. determines what functions a trusted entity can perform, and 
20 determines who can update the ront security infomietion object; 

wherein the end user root security information object is cnntrolleri by the software 
provider root security Information object; and 

vi^erein the computer system refuses Infomnatlon from an entity that is not 
included in the end user root security information object 

%. (New) The method of cigim ^Rrherein the end user sends end user security 
Information to the higher-level entity. 

^. (New) The method of claim iiwheieln the higher-level entity sends end user 
30 security infomiation to a software provider. 
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(New) method of claim^fS wherein the end user receives security Information 
within a digital certificate. 

^2," fMew^ Ths method of daim l8 whprRli 



(New) The method of daim 



3in the entities the end user can trust 



6 include a certification authority. 

29 (New) A method of controlling a computer system, compnsmg; 

storinc a software prnvi'der root security infonnatjon object in a local computing 
device; 

10 producing local root security infomipiinn hn^i&d on the stored software provider 
root gecuiity information object, wherein said local root security infomnation identifies 
trusted entities, provides taist information that spedfles the roles that the trusted 
entities ce n fulfill, and designates who can modify the local root entity Information; 
receivlig updated trust irrfbrmetion; 
15 validatng the received updated trust information using the local root security 
Informatio i and the software provider root sRajrity information object; and 
updating the local root security Information with the validated trust infnrmation, 

ew) The method of claim 3^ wherein the local computing device sends 
security infonngtion to an upper-level entity. 



(N 

20 local rupt 



(N 



2^ ^ 



ew) The method 



of daim ^t^tiBmin the upper-level entity sends local root 



security information to a software provider. 

A'! 



30 



(f^lew) The method of claim 29 wherein the end user receives updated trust 
informatinn embeddftrt within e digital certificate. 

(^ ew) The method of daim irf wherein the entities the local user can tmst 
include a certification authority. 

^ (Mew) A method of updating tojst relationships of users, wherein each user 
includes stored software provider information and stored user root security 
infnrmBtii )n, the method comprising: 
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mainta ning an upper level root security irrfnrm^jtion object in a computing dovlce, 
wherein ITe upper level root eocurity Infomiatlon object indudes information regarding 
the user r^nt security infomiatlon of each user and Irrfbrmation on the stnred 3Qftware 
provider information; and 
5 sending a selected usRr updated security infomnation; 

where n the sent updated security infnntiation is security protected using the 
selected jeer's stored user root security infnnfnatlon and the software provider 
informatioi: end 

wher«n the sent updated security Information indudes information regarding a 
10 tnjsted entity. 



regards 

15 ^ (^ ew) A method of daim^ wherein the sent updated senurity information is 



embedded in a digital certificate. 



20 



Vl. (New) A method of claim » wherein the digital certificate Is in accord with 
X.509 ve|rsion 3. 

(rjew) A method of cialm^ wherein the sent updated sar^rity information is 
also sen to a snftware provider. 



(New) A melfiod of daim ^wherein the sent updated security Irrformation 
i certiflcatlon authority. 
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